0x5t4l1n/hunting
1
0
Fork 0
mirror of https://github.com/0x5t4l1n/hunting.git synced 2026-05-26 11:35:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
79cc1966add64ecdf679a8736c2c4bbf4e8f1747
hunting/OWASP-Top-10/A01-Broken-Access-Control/open-redirect/README.md
T
copilot-swe-agent[bot] 79cc1966ad Add open-redirect folder with comprehensive payloads and documentation 
Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
2026-01-04 18:39:07 +00:00

1.4 KiB
Raw Blame History

Open Redirect Vulnerability

Description

Open redirect vulnerabilities occur when a web application accepts user-controllable input that specifies a link to an external site and uses that link in a redirect. This vulnerability can be exploited by attackers to redirect users to malicious websites while making the URL appear legitimate.

Common Vulnerabilities

  • Unvalidated redirect parameters (e.g., ?url=, ?redirect=, ?next=)
  • Return URL manipulation in authentication flows
  • Post-login redirects
  • Logout redirects
  • URL parameter injection
  • Header-based redirects (e.g., Location, Refresh headers)

Impact

  • Phishing attacks
  • Credential theft
  • Malware distribution
  • Bypassing security controls (e.g., URL whitelisting)
  • Social engineering attacks

Testing Approach

  1. Identify redirect parameters in URLs (e.g., url, redirect, next, return, continue)
  2. Test with external URLs (e.g., http://evil.com)
  3. Try various encoding techniques to bypass filters
  4. Test protocol handlers (e.g., javascript:, data:)
  5. Test absolute and relative paths
  6. Check POST-based redirects in addition to GET parameters

Prevention

  • Avoid using user-supplied input for redirects
  • Use a mapping of allowed redirect destinations
  • Validate redirect URLs against a whitelist
  • Use relative URLs where possible
  • Implement proper input validation and sanitization
Reference in New Issue View Git Blame Copy Permalink